the problem that we all have these “testing tools” are available to all the hackers as well:

Notice I only picked Chase and Hsbc because they were also used in the Zero-day article as I am not interested in creating a ‘research paper’ which shows the world where to check for insecure website (the hacker can spend their own time doing that)

All sites should update website encryption technologies that do not include weak technologies or configurations.